Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F600FA7654A211EFA4CF1270762E951A.roa
File: F600FA7654A211EFA4CF1270762E951A.roa (raw, json)
Hash identifier: aafevezxakULBGAk++Js6EzEbzEBVjm46ZMI/1HkcKc=
Subject key identifier: 92:CB:BA:4B:25:29:08:1C:FE:31:4D:5D:B4:F6:62:51:28:5C:CF:17
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 178D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F600FA7654A211EFA4CF1270762E951A.roa
Signing time: Wed 07 Aug 2024 09:53:56 +0000
ROA not before: Wed 07 Aug 2024 09:53:53 +0000
ROA not after: Fri 07 Aug 2026 09:53:53 +0000
asID: 14670
IP address blocks: 154.16.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6029 (0x178d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 7 09:53:53 2024 GMT
Not After : Aug 7 09:53:53 2026 GMT
Subject: CN=66b34434-6aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:90:e7:e4:e7:0e:04:9f:3d:c8:28:c0:4a:c8:
15:0f:7e:ea:8b:27:c5:84:f4:b3:e1:58:a4:b7:78:
2e:e3:0d:41:8a:d9:e9:d5:4f:dc:cb:b4:c3:2b:46:
2c:25:ca:b4:9e:7d:7a:da:ad:18:46:19:10:26:9f:
36:a9:e1:6d:40:3b:8a:2b:38:aa:51:bd:9d:bd:cb:
bd:ee:3e:91:1a:92:9f:dd:eb:ad:e7:17:9b:b1:5c:
9e:73:fe:d5:7e:40:4d:42:b2:52:54:d0:56:a7:74:
e4:0a:0c:9e:36:97:e7:3b:c9:7e:c8:28:d0:8b:47:
a1:cb:0f:5e:a0:91:cf:e0:92:3c:3c:e5:a3:eb:41:
ab:86:b4:77:24:7c:f0:0a:b6:08:f9:49:c0:ff:7a:
66:97:4e:99:a2:6e:27:e7:95:5d:6c:48:38:71:f5:
5b:6e:f8:c8:11:65:80:6d:a5:b8:d2:bb:80:f0:e7:
17:d1:d3:45:58:d1:6b:13:f9:d3:13:c1:c8:95:72:
01:71:a5:3b:07:0c:94:f5:8a:50:04:33:c5:13:23:
1e:5b:77:ac:82:27:c7:10:38:02:2e:5a:f1:f4:c2:
c8:d1:d5:30:a8:0f:73:a5:7b:a3:d0:04:a3:58:b8:
2c:97:80:49:63:bb:90:cb:d0:53:e3:15:ca:de:4f:
b2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CB:BA:4B:25:29:08:1C:FE:31:4D:5D:B4:F6:62:51:28:5C:CF:17
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F600FA7654A211EFA4CF1270762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.119.0/24
Signature Algorithm: sha256WithRSAEncryption
55:90:0f:4a:2c:ef:cd:8f:0a:e8:f7:79:96:29:7d:e0:ce:66:
a1:19:20:cf:db:be:ae:9b:b5:20:90:6a:e6:95:73:ce:18:c3:
34:3f:33:d2:83:b9:d2:cd:1e:8d:ce:a0:98:e4:c4:93:5c:86:
97:ae:10:21:64:38:ef:23:7a:b1:ff:19:51:90:62:ed:5b:75:
d3:3b:2a:35:57:cb:f9:69:53:ff:89:2e:b4:c5:4d:fd:f5:1f:
b7:64:f9:5a:5d:64:17:0d:46:6c:ce:45:35:8f:87:2a:99:c1:
7b:31:da:95:4a:be:16:c5:81:5c:22:ed:31:3f:7a:12:a5:99:
4f:6e:59:56:6f:17:ac:4d:ac:8f:df:aa:f6:50:5f:cc:33:f5:
c7:1d:ed:d2:2d:50:74:aa:6d:7b:25:f3:a8:ca:b0:ee:9b:f4:
3e:25:f7:f4:34:18:29:e2:83:0a:a2:83:8a:cc:8a:12:7b:a8:
23:c2:53:2d:eb:d3:8c:d3:ff:f1:94:32:6d:cd:c4:aa:83:1d:
a5:fb:b5:37:81:8f:c2:77:9c:a8:a5:c3:cf:2c:1c:78:c1:a7:
01:91:f0:a6:a0:4f:ab:a3:6e:ed:ae:43:cd:d1:1e:ef:ea:d6:
89:ba:d1:5b:55:12:fe:7e:1e:a2:86:83:76:7b:5f:f1:e9:aa:
6f:66:90:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 02:58:34 2024 by rpki-client on console-fra.rpki-client.org